\a\ United States Patent and Trademark Office 
m 



A 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Address: COMMISSIONER FOR PATENTS 
P.O.Box 1450 

Alexandria, Virginia 22313-1450 
www.uspto.gov 



APPLICATION NO. 



filing Date 



FIRST NAMED INVENTOR 



ATTORNEY DOCKET NO. 



CONFIRMATION NO. 



09/610,722 



28393 



07/06/2000 



Suresh Krishna 



7590 



10/05/2005 



STERNE, KESSLER, GOLDSTEIN & FOX P.L.L.C. 
1 1 00 NEW YORK AVE., N. W. 
WASHINGTON, DC 20005 



BRCMP005 



5437 



EXAMINER 



COLIN, CARL G 



ART UNIT 



PAPER NUMBER 



2136 

DATE MAILED: 10/05/2005 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



I 

Office Action Summary 


Application No. 

09/610,722 


Applicant(s) 

KRISHNA ET AL 


examiner 

Carl Colin 


Art Unit 

2136 





— The MAILING DATE of this communication appears on the cover sheet with the correspondence address — 



Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH (S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)^ Responsive to communication(s) filed on 25 July 2005 . 
2a)D This action is FINAL. 2b)M This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD. 1 1 , 453 O.G. 213. 
Disposition of Claims 

4) ^ Claim(s) 46-70 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) H Claim(s) 46-70 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) S The drawing(s) filed on 06 July 2000 is/are: a)S accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 

1 1) D The proposed drawing correction filed on is: a)D approved b)D disapproved by the Examiner. 

If approved, corrected drawings are required in reply to this Office action. 

12) Q The oath or declaration is objected to by the Examiner. 
Priority under 35 U.S.C. §§119 and 120 

1 3) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 1 9(a)-(d) or (f). 

a)DAII b)Q Some*c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

14) [2 Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 1 19(e) (to a provisional application). 

a) □ The translation of the foreign language provisional application has been received. 

1 5) D Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 1 20 and/or 1 21 . 

Attachment(s) 

1 ) I3 Notice of References Cited (PTO-892) 4) □ Interview Summary (PTO-41 3) Paper No(s). . 

2) C] Notice of Drafts person's Patent Drawing Review (PTO-948) 5) \Z\ Notice of Informal Patent Application (PTO-152) 

3) £3 Information Disclosure Statement(s) (PTO-1449) Paper No(s) see aft . 6) Q Other: 
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DETAILED ACTION 

Response to Arguments 

1 . In response to communications filed on 7/25/2005 for a request to continue examination, 
applicant amends independent claims 46 and 64. The following claims 46-70 are presented for 
examination. 

2. Applicant's arguments, filed on 7/25/2005, with respect to the rejection of claims 46-70 
have been fully considered, but they are not persuasive. Applicant mentions that in Leung "The 
server does not receive data packets originated by the roaming mobile node or destined for the 
roaming mobile node. Therefore, Leung does not determine security association information 
associated with each data packet in a plurality of data packets, as recited in amended independent 
claims 46 and 64 " Applicant respectfully disagrees. Leung discloses that security associations 
may be retrieved to authenticate mobile nodes at the Home Agent as well as at the server column 
5, lines 1-5. Security association may be authenticated by sending the security association for 
the mobile node from the server to the mobile node's Home Agent, then authentication is 
performed at the Home Agent (column 6, lines 56-60). In response to Applicant's remark that 
the server in Leung provides only authentication processing, therefore, Leung does not teach or 
suggest a plurality of security processing engines that perform authentication and cryptographic 
functions, Leung also discloses message digest and authentication using cryptographic keys that 
meets the recitation of performing authentication and cryptographic function (see column 3, lines 
15-45 and column 3, line 45 through column 4, line 5). In response to applicant's argument that 
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the references fail to show certain features of applicant's invention, it is noted that the features 
upon which applicant relies (i.e., the server receiving data packets originated by the mobile node 
or destined for the mobile node) are not recited in the rejected claim(s). Although the claims are 
interpreted in light of the specification, limitations from the specification are not read into the 
claims. See In re Van Geuns, 988 F.2d 1 181, 26 USPQ2d 1057 (Fed. Cir. 1993). Leung 
suggests using plurality of packets (see column 2, lines 20-46 and column 10, lines 25-40). 
Applicant has not overcome the rejection by amending the claims. Upon further consideration, 
claims 46-70 are still rejected in view of Leung. 

Claim Rejections - 35 USC § 102 
3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another 
filed in the United States before the invention thereof by the applicant for patent, or on an 
international application by another who has fulfilled the requirements of paragraphs (1), 
(2), and (4) of section 371(c) of this title before the invention thereof by the applicant for 
patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act of 1999 
(AIP A) and the Intellectual Property and High Technology Technical Amendments Act of 2002 
do not apply when the reference is a U.S. patent resulting directly or indirectly from an 
international application filed before November 29, 2000. Therefore, the prior art date of the 
reference is determined under 35 U.S.C. 102(e) prior to the amendment by the AIPA (pre-AJDPA 
35 U.S.C. 102(e)). 
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3.1 Claims 46-70 are rejected under 35 U.S. C. 102(e) as being anticipated by US Patent 
6,760,444 to Leung. 

3.2 As per claims 46 and 64, Leung discloses a server receiving a packet identifying a 
mobile node and obtaining security association from a security association table, the server is 
configured to construct the packet and includes security association and provides at least a 
portion of the security association to at least one of a plurality of Home Agents (processing 
engines) that perform authentication and cryptographic operations that meets the recitation of 
receiving at least a portion of a header for each data packet in a plurality of data packets (see 
column 7, lines 33-50 and column 2, line 57 through column 3, line 15) and a classification 
module that determines security association information associated with each data packet in a 
plurality of data packets, for example (see column 7, lines 33-50); wherein the classification 
module is configured to provide at least a portion of the security information associated with the 
packets to a plurality of security processing engines, for example (see column 7, lines 33-50; 
column 6, lines 7-46; column 4, lines 32-62; and claims 1-3) that perform authentication and 
cryptographic operations (see column 3, lines 15-45). In another embodiment, Leung discloses a 
Home agent or server performing the determining step and a server performing authentication 
and cryptographic operations (column 8, line 36 through column 9, line 15). 

As per claims 47-48, Leung discloses the limitation of further comprising a database 
including security association information wherein the database is local to the classification 
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module, and wherein the database includes one or more entries wherein each entry defines 
information associated with one security association, for example (see column 3, line 45 through 
column 4, line 3 1 and column 6, lines 7-32). 

As per claim 49, Leung discloses the limitation of wherein the database is located on the 
same chip as the classification module, for example (see column 9, lines 21-52). 

As per claim 50, Leung discloses the limitation of wherein the security association 
information includes a sequence number an anti-replay window and a lifetime of the security 
association, for example (see column 3, line 45 through column 4, line 5). 

As per claim 51, Leung discloses the limitation of wherein the security association 
information further includes an encapsulating security pay load (ESP) encryption algorithm 
identifier and one or more ESP encryption keys, for example (see column 3, line 45 through 
column 4, line 5). 

As per claims 52-53, Leung discloses the limitation of wherein the security association 
information further includes an (ESP) authentication algorithm identifier and one or more ESP 
authentication keys and an authentication header (AH) authentication algorithm identifier and 
one or more AH authentication keys, for example (see column 3, line 1 through column 4, line 
5)- 
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As per claim 54, Leung discloses the limitation of wherein the security association 
information includes protocol information, for example (see column 2). 

Claims 55-63 recite the same inventive concept as claims 46 and 47 except for using 
different memory and having the system embodied in different communication device such as 
router, firewall, etc. These modifications do not depart from the spirit and scope of the invention 
disclosed by Leung, for example (see column 10, lines 55-63). See also column 4, lines 5-62; 
column 6, lines 18-55; and column 9; for different memory and system embodiment). 

As per claims 65-67, Leung discloses the limitation of wherein the step of determining 
security association information comprises accessing a database to determine security association 
information and further comprises using one or more selectors to identify a security association 
information entry in the database wherein the one or more selectors include at least one of a 
destination BP address, a security protocol identifier and a security protocol identifier and a 
security parameter index, for example (see columns 3 and 7). 

As per claims 68-69, Leung discloses the limitation of wherein one or more selectors the 
step of determining security association information comprises accessing a database to determine 
security association information and further comprises using one or more selectors include at 
least one of a destination IP address, a source BP address and a transport layer protocol; and 
discloses the limitation of wherein one or more selectors further include a source port and a 
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destination port, for example (see column 3, column 8, lines 1-14; lines 50 et seq.; column 9, line 
52 through column 10, line 40). 

As per claim 70, Leung discloses updating or generating new security association in the 
server and discloses a database in the server to store security association information for the 
Home Agent that meets the recitation of wherein the step of determining security association 
information comprises if no security association information exists in the database associated 
with the packet, generating the security association information and storing the security 
association information in an entry in the database, for example (see column 7, line 50 through 
column 8, line 40). 

Conclusion 

4. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure as the art discloses efficient classification of packets. 
US Patent Application Publication: US 2003/0005 144 Engel et al. 

US Patents: 6,226,710 Melchior; 6,751,728 Gunter et al. 

4. 1 Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Carl Colin whose telephone number is 571-272-3862. The 
examiner can normally be reached on Monday through Thursday, 8:00-6:30 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov . Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



Carl Colin 



Patent Examiner 



October 2, 2005 




